WSO2 身份服务器 + Rest STS 客户端(无 ESB) [英] WSO2 Identity Server + Rest STS Client (without ESB)
问题描述
以下是否可以使用 WSO2 IS?我浏览过不同的 WSO2 博客.他们是很好的指针.我仍然需要就此提出建议.
Is below possible using WSO2 IS? I have gone through different WSO2 blogs. They are nice pointer. Still I need to advised on this.
要求 - WSO2 Identity Server + Rest STS Client(无 ESB)
Requirement- WSO2 Identity Server + Rest STS Client (without ESB)
- 用户在 WSO2 身份服务器上进行管理.
- STS Client 使用 RestFul API 调用 WSO2 Identity Server 的 STS 服务 a) 获取 Security Token b)Validate Token c)cancel Issued Token d) renew Issued Token
- 使用特定的安全令牌检索用户个人资料.
参考:
- https://web.cci.emory.edu/confluence/display/EmorySTS/Security+Token+Service+Client+API
- http://blog.facilelogin.com/2011/07/integrating-3-legged-oauth-with-xacml.html
- http://blog.facilelogin.com/2010/05/managing-users-and-roles-with-wso2.html
- http://blog.facilelogin.com/2009/05/security-token-service-with-wso2.html
- http://blog.facilelogin.com/2009/05/accessing-proxy-services-in-wso2-esb.html
- http://download.forgerock.org/downloads/openam/javadocs/9/com/sun/identity/wss/sts/TrustAuthorityClient.html
推荐答案
基于 WS-Trust 的 STS 用于基于 SOAP 的服务.但是 WSO2 Identity Server 还实现了另一个称为 Passive STS 的规范——它是 WS-Trust 功能的包装器.WSO2 Identity Server 中的 PassiveSTS 支持可用作获取 REST 客户端令牌的方式.
STS which is based on WS-Trust is for SOAP based services. But WSO2 Identity Server also implements another specification called Passive STS - which is wrapper of the WS-Trust functionality. PassiveSTS support in WSO2 Identity Server can be used as way to obtain a token for REST client.
这篇关于WSO2 身份服务器 + Rest STS 客户端(无 ESB)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
